CVE-2021-27662

Summary

The KT-1 door controller is susceptible to replay or man-in-the-middle attacks where an attacker can record and replay TCP packets. This issue affects Johnson Controls KT-1 all versions up to and including 3.01

Affected Software

VendorProductVersion RangeStatus
Johnson ControlsKT-1all versions up to and including 3.01 <= 3.01affected

Weaknesses

  • CWE-294: CWE-294: Authentication Bypass by Capture-replay

ADP Enrichment

CVE Program Container

Additional References

References